The solution can automatically detect, contain and then disrupt any intrusion prior to data exfiltration or other damage

Gartner estimates that by 2020 over 25 percent of cyberattacks will involve IoT devices. As a result, addressing cybersecurity vulnerabilities has become a major focus for organizations of all sizes and in all industries.

Leading cybersecurity firm CSPi and security analytics solution provider Seceon have partnered and developed a new solution that can address the unique security challenges found in commercial Internet of Things (IoT) devices, especially in the medical (IoMT) and industrial (IIoT) markets.

The companies have used a simple API integration between ARIA SDS Packet Intelligence application and aiSIEM to proactively stop cyberattacks on IoT devices.

Potential consequences associated with unsecured IoT devices

Securing commercial IoT devices is a big challenge because of the following reasons:

Security considerations are often deprioritized in order to maximize business returns.

Most IoT devices have limited capacity to run third-party security applications like endpoint detection and response (EDR) applications and other bolt-on security services.

Meanwhile, with the explosion of IoT devices, more sensitive data is being shared across many devices. This gives hackers more avenues to exploit and thus makes security risks exponentially greater.

The potential consequences associated with unsecured IoT devices are much worse than people may realize, notes Gary Southwell, GM, CSPi.

For example, he says, a compromised medical IoT device can threaten a patient’s life, and if an industrial infrastructure, such as a power grid, is taken offline, it can cripple a city.

“With an easy-to-deploy API, the tools work seamlessly to control CSPi’s nVoy Security Appliances, which act as ARIA SDS in-line probes, which can automatically detect, contain and then disrupt any intrusion prior to data exfiltration or other damage,” Gary explains.

How the new cybersecurity solution works?

The ARIA Packet Intelligence application deploys transparently inside the network and detects, as well as monitors the traffic originating from all IoT devices. It classifies all the traffic related to those devices, at line rate, and creates enriched NetFlow metadata, which are ingested by Seceon’s aiSIEM.

The aiSIEM’s ability to take in network flow data sourced from the ARIA SDS solution makes it very effective at finding difficult-to-detect network-born threats, including those originating from IoT devices.

In addition, the aiSIEM can instruct the ARIA SDS probes to stop only the specific threat conversations – while allowing critical applications and devices to continue to operate.

The solution also provides simple, implementable network-based microsegmentation, preventing rogue IoT devices from trying to communicate with devices or applications they should not.

The solution also works with Seceon’s aiMSSP solution and allows MSSPs to offer lucrative managed detection and response (MDR) solutions into the IoT market space.

Stops threats within the network

Speaking about the new solution, Chandra Panday, CEO, Seceon, says, “Our aiSIEM solution was designed from the ground up to deliver a comprehensive approach to securing the complexity of evolving threat vectors, such as those found in medical and industrial IoT devices”

“When coupled with our aiMSSP offerings, both enterprises and MSSPs have a powerful new MDR solution to surgically stop more threats within the network, including those impacting IoT devices,” he adds.

aiSIEM and aiMSSP are award-winning solutions built on the Seceon’s Open Threat Management (OTM) platform. These solutions support enterprise comprehensive cybersecurity and MSSPs offering aiMDR, aiSOC and aiSIEM services with flexible deployment models.